bd207ca9a07851c88b91094c444bb9ad_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bd207ca9a07851c88b91094c444bb9ad_JaffaCakes118
Size

992KB
MD5

bd207ca9a07851c88b91094c444bb9ad
SHA1

b4d05df8508c2e1af3fd08708957069251f2003c
SHA256

2c71a9bd7b05d7f52b12839af4a5094bf8ceaf870573d9fbc5b906e46a3f31cf
SHA512

4f5c73cc9d24a08d951832a0c718322a8673d09cc7fa5bc41f5752791478ca3b8ef9b9efa4d6d896d7a7097b40278aeea149331649aa2539d49689c28f3575ee
SSDEEP

24576:UDhbQzkVyzCYyd27ydwfITL5qc5g9PPxjq:ihIVGagwQn5SPPxjq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd207ca9a07851c88b91094c444bb9ad_JaffaCakes118

Files

bd207ca9a07851c88b91094c444bb9ad_JaffaCakes118
.dll windows:4 windows x86 arch:x86

af1d8f4aaa810dfb8ed12e93c041bddf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\dump50\x86\bbt\riched20.opt.pdb

Imports

kernel32

RaiseException
InterlockedExchange
LocalAlloc
GetLocaleInfoW
GetCurrentThreadId
SetFilePointer
CloseHandle
WriteFile
ReadFile
Sleep
HeapDestroy
DeleteCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
LocalFree
FormatMessageA
lstrlenA
GetLocaleInfoA
GetTickCount
IsBadReadPtr
lstrcmpiA
HeapFree
HeapReAlloc
HeapCreate
HeapAlloc
GetProfileIntA
GetLastError
FindAtomW
FindAtomA
LoadLibraryW
LoadLibraryA
GetProfileSectionW
GetProfileSectionA
CompareStringW
CompareStringA
CreateFileW
CreateFileA
GetStringTypeExW
GetStringTypeExA
IsBadWritePtr
GetModuleHandleW
GetModuleFileNameW
GetModuleFileNameA
GetUserDefaultLCID
GetSystemDefaultLangID
GetModuleHandleA
IsValidCodePage
GetThreadLocale
GetSystemDefaultLCID
GetACP
GlobalUnlock
GlobalHandle
GlobalLock
GlobalSize
GlobalReAlloc
GlobalFlags
GlobalFree
GlobalAlloc
lstrcmpiW
EnterCriticalSection
GetVersionExA
MultiByteToWideChar
MulDiv
WideCharToMultiByte
GetProcAddress
FreeLibrary
LeaveCriticalSection

advapi32

RegOpenKeyExW
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

gdi32

TranslateCharsetInfo
SetEnhMetaFileBits
GetEnhMetaFileBits
GetMetaFileBitsEx
GdiFlush
SaveDC
IntersectClipRect
RestoreDC
GetBkMode
CreateBitmap
CreatePatternBrush
GetWinMetaFileBits
SetMetaFileBitsEx
DeleteEnhMetaFile
CreateMetaFileA
SetWindowOrgEx
SetWindowExtEx
CloseMetaFile
DeleteMetaFile
EnumMetaFile
GetCurrentObject
StretchBlt
SetTextColor
CreateCompatibleDC
CreatePen
Polyline
GetBkColor
SetBkMode
PatBlt
BitBlt
CreateICW
GetPixel
GetStockObject
DeleteDC
SelectObject
GetTextMetricsW
GetTextMetricsA
GetObjectW
GetObjectA
CreateFontIndirectW
CreateFontIndirectA
GetTextFaceW
GetTextFaceA
GetKerningPairsA
GetDeviceCaps
GetCharWidthA
GetCharWidthW
SetBkColor
CreateSolidBrush
SetTextAlign
GetTextCharsetInfo
EnumFontFamiliesExW
DPtoLP
LPtoDP
CreatePalette
SelectPalette
RealizePalette
DeleteObject
GetObjectType
Escape
ExtTextOutW
ExtTextOutA
CreateCompatibleBitmap
Rectangle
SetROP2
CreateDIBSection
GetEnhMetaFileHeader
CreateICA
GetOutlineTextMetricsA
GetCharABCWidthsW

user32

ActivateKeyboardLayout
ShowScrollBar
EnableScrollBar
wvsprintfA
SetCaretBlinkTime
DefWindowProcA
DefWindowProcW
GetWindowLongA
GetWindowLongW
GetClassLongA
GetClassLongW
LoadBitmapA
LoadBitmapW
LoadCursorA
LoadCursorW
SetWindowLongA
SetWindowLongW
PostMessageA
PostMessageW
PeekMessageA
PeekMessageW
InvertRect
GetParent
GetForegroundWindow
KillTimer
WindowFromPoint
PtInRect
GetCursorPos
MapWindowPoints
GetClientRect
SetTimer
FillRect
InflateRect
FrameRect
GetSysColor
RegisterWindowMessageA
GetKeyState
GetKeyboardLayout
SystemParametersInfoA
SendMessageA
FindWindowA
SendMessageW
IsWindowUnicode
GetKeyboardLayoutList
GetDoubleClickTime
SetWindowPos
CreateWindowExW
CharLowerA
CharLowerBuffW
CharUpperA
CharUpperBuffW
UnregisterClassA
UnregisterClassW
RegisterClassA
RegisterClassW
GetSystemMetrics
RegisterClipboardFormatA
IntersectRect
ReleaseDC
SetRect
GetWindowRect
GetWindowDC
GetDC
IsIconic
GetFocus
GetDlgItem
InvalidateRect
IsWindowVisible
SetScrollRange
SetScrollPos
UpdateWindow
CreateCaret
HideCaret
ShowCaret
SetCaretPos
ScrollWindowEx
ReleaseCapture
SetCapture
SetFocus
SetCursor
ScreenToClient
ClientToScreen
SetForegroundWindow
SetScrollInfo
ValidateRect
EndPaint
BeginPaint
DestroyCaret
MessageBoxA
GetCapture
GetCaretPos
IsClipboardFormatAvailable
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard
GetClipboardOwner
GetClipboardData
TrackPopupMenu
MessageBeep
DestroyMenu
WindowFromDC
GetAsyncKeyState
CopyRect
OffsetRect
GetMessagePos
GetMessageTime
DrawFocusRect
GetScrollInfo
DestroyWindow
GetCursor
DrawFrameControl
GetMonitorInfoW
MonitorFromWindow
GetDCEx
ShowWindow
MoveWindow
SetParent
CreateWindowExA
EnableWindow
IsChild
GetWindow
IsWindow
GetDesktopWindow
SystemParametersInfoW
IsWindowEnabled

Exports

Exports

CreateTextServices
DllGetVersion
IID_IRichEditOle
IID_IRichEditOleCallback
IID_ITextHost
IID_ITextHost2
IID_ITextHostEx
IID_ITextServices
REExtendedRegisterClass
RichComboBoxWndProc
RichEdit10ANSIWndProc
RichEditANSIWndProc
RichEditWndProc
RichListBoxWndProc
SetCustomTextOutHandlerEx

Sections

.text
Size: 784KB - Virtual size: 781KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

af1d8f4aaa810dfb8ed12e93c041bddf

Headers

File Characteristics

PDB Paths

Imports

kernel32

advapi32

gdi32

user32

Exports

Exports

Sections

.text Size: 784KB - Virtual size: 781KB

.rdata Size: 52KB - Virtual size: 48KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 44KB - Virtual size: 43KB

.reloc Size: 16KB - Virtual size: 15KB

.text Size: 88KB - Virtual size: 88KB

.text
Size: 784KB - Virtual size: 781KB

.rdata
Size: 52KB - Virtual size: 48KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 44KB - Virtual size: 43KB

.reloc
Size: 16KB - Virtual size: 15KB

.text
Size: 88KB - Virtual size: 88KB